VirusBlast
|
Description:
|
Rogue Security Program
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Thursday, May 22, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Rogue/Suspect Anti-Spyware Product
"Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SUPPRIMER SPYWARE »
Geographical Distribution of Threat "VirusBlast"
Threat Info
View All
Detecting items list:
- Files by Name
%APPDATA%\Microsoft\Internet Explorer\Quick Launch\VirusBlast v?.*.lnk
%DESKTOP%\VirusBlast v?.*.lnk
%START_MENU%\VirusBlast v?.*.lnk
%START_PROGRAMS%\VirusBlast\VirusBlast v?.? Un-Installer.lnk
%START_PROGRAMS%\VirusBlast\VirusBlast v?.? Website.lnk
%START_PROGRAMS%\VirusBlast\VirusBlast v?.?.lnk
%ProgramFiles%\VirusBlast\VirusBlast
%ProgramFiles%\VirusBlast\activex.db
%ProgramFiles%\VirusBlast\blacklist.db
%ProgramFiles%\VirusBlast\BlastIEmonitor.dll
%ProgramFiles%\VirusBlast\config.ini
%ProgramFiles%\VirusBlast\cookies.db
%ProgramFiles%\VirusBlast\DbgHelp.Dll
%ProgramFiles%\VirusBlast\filesNames.db
%ProgramFiles%\VirusBlast\hosts.db
%ProgramFiles%\VirusBlast\knownLocations.db
%ProgramFiles%\VirusBlast\md5.db
%ProgramFiles%\VirusBlast\registry.db
%ProgramFiles%\VirusBlast\spywareinfo.db
%ProgramFiles%\VirusBlast\uninst.exe
%ProgramFiles%\VirusBlast\virusblast.chm
%ProgramFiles%\VirusBlast\VirusBlast.exe
%ProgramFiles%\VirusBlast\VirusBlast.url
%ProgramFiles%\VirusBlast\Plugins\DesktopManager\DesktopManager.dll
%ProgramFiles%\VirusBlast\Plugins\MessengerControl\MessengerControl.dll
%ProgramFiles%\VirusBlast\Plugins\StartupEditor\StartupEditor.dll
- Files by Directories
%ProgramFiles%\VirusBlast
- Files by CLSID or Name
CLSID=0D0FAB5C-2BE4-4126-A28E-828FEBCE1E55
CLSID=1F6FE2C2-6040-4645-9053-7F689AFFE176
CLSID=9DA04BBD-71BB-020C-436E-42FECBB98F05
CLSID=E6B4AB50-F423-4EE6-9839-B35DCFCDFA49
- Registry Keys
HKLM\SOFTWARE\Classes\AppID\{490E7D57-1FC1-4ea6-BD52-483B7271B223}
HKLM\SOFTWARE\Classes\AppID\{9DA1990B-9BCA-4c80-AEFB-11A40FA849F9}
HKLM\SOFTWARE\Classes\Interface\{1131081D-81ED-46F0-8B03-B728AEAFFD12}
HKLM\SOFTWARE\Classes\Interface\{214345B8-BB69-498D-A168-29F58F15D806}
HKLM\SOFTWARE\Classes\Interface\{E6B4AB50-F423-4EE6-9839-B35DCFCDFA49}
HKLM\SOFTWARE\Classes\TypeLib\{283ED043-D403-4808-BF28-FCDE29DCF1FB}
HKLM\SOFTWARE\Classes\TypeLib\{80ED1EB2-55FB-4434-BD41-E1645A370158}
HKLM\SOFTWARE\Classes\IEControl.IEExtension
HKLM\SOFTWARE\Classes\IEControl.IEExtension.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\VirusBlast.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F6FE2C2-6040-4645-9053-7F689AFFE176}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusBlast
HKLM\SOFTWARE\VirusBlast
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1F6FE2C2-6040-4645-9053-7F689AFFE176}
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\VirusBlast
- Registry Values
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=VirusBlast
«
Go to Software Database
